Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

So this is "whomever is signing the app gets compromised" vs "whomever is hosting js gets compromised". Right?

Facebook could afford a security team just as capable as Apples security team, and make sure the js server remains secure. And if they can't, their own signing procedure can get compromised before the app is uploaded to Apple for review.

I'm still not seeing the difference. Anyone?



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: